Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2017/10/04 12:0 a.m.26 views

FreeBSD : FreeBSD -- heimdal KDC-REP service name validation vulnerability (420243e9-a840-11e7-b5af-a4badb2f4699)

There is a programming error in the Heimdal implementation that used an unauthenticated, plain-text version of the KDC-REP service name found in a ticket. Impact : An attacker who has control of the network between a client and the service it talks to will be able to impersonate the service,...

6.5CVSS7AI score0.00992EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/08/18 12:0 a.m.26 views

openSUSE Security Update : libheimdal (openSUSE-2017-937) (Orpheus' Lyre)

This update for libheimdal fixes the following issues : - Fix CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation. This is a critical vulnerability. In krb5extractticket the KDC-REP service name must be obtained from encrypted version stored in 'encpart' instead of the unencrypted versi...

8.1CVSS7AI score0.05118EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.22 views

Debian DSA-3909-1 : samba - security update (Orpheus' Lyre)

Jeffrey Altman, Viktor Duchovni and Nico Williams identified a mutual authentication bypass vulnerability in samba, the SMB/CIFS file, print, and login server. Also known as Orpheus' Lyre, this vulnerability is located in Samba Kerberos Key Distribution Center KDC-REP component and could be used ...

8.1CVSS7AI score0.05118EPSS
Exploits0References7
ALT Linux
ALT Linux
added 2017/07/13 12:0 a.m.37 views

Security fix for the ALT Linux 7 package samba-DC version 4.5.12-alt1.M70P.1

4.5.12-alt1.M70P.1 built July 13, 2017 Evgeny Sinelnikov in task 185331 July 12, 2017 Evgeny Sinelnikov - Update to summer security release - Security fixes: + CVE-2017-11103 Orpheus' Lyre KDC-REP service name validation...

6.8CVSS8.3AI score0.05118EPSS
Exploits0
ALT Linux
ALT Linux
added 2017/07/13 12:0 a.m.71 views

Security fix for the ALT Linux 7 package samba version 4.5.12-alt1.M70P.1

4.5.12-alt1.M70P.1 built July 13, 2017 Evgeny Sinelnikov in task 185331 July 12, 2017 Evgeny Sinelnikov - Update to summer security release - Security fixes: + CVE-2017-11103 Orpheus' Lyre KDC-REP service name validation Samba binaries built against MIT Kerberos are not vulnerable...

6.8CVSS8.3AI score0.05118EPSS
Exploits0
ALT Linux
ALT Linux
added 2017/07/12 12:0 a.m.49 views

Security fix for the ALT Linux 8 package samba version July

July 12, 2017 Evgeny Sinelnikov 4.6.6-alt1 - Update to summer security release - Security fixes: + CVE-2017-11103 Orpheus' Lyre KDC-REP service name validation Samba binaries built against MIT Kerberos are not vulnerable...

6.8CVSS7AI score0.05118EPSS
Exploits0
FreeBSD Advisory
FreeBSD Advisory
added 2017/07/12 12:0 a.m.16 views

FreeBSD-SA-17:05.heimdal

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-17:05.heimdal Security Advisory The FreeBSD Project Topic: heimdal KDC-REP service name validation vulnerability Category: contrib Module: heimdal Announced:...

8.1CVSS6.7AI score0.05118EPSS
Exploits0
FreeBSD
FreeBSD
added 2017/07/12 12:0 a.m.31 views

FreeBSD -- heimdal KDC-REP service name validation vulnerability

Problem Description: There is a programming error in the Heimdal implementation that used an unauthenticated, plain-text version of the KDC-REP service name found in a ticket. Impact: An attacker who has control of the network between a client and the service it talks to will be able to impersona...

6.5CVSS6.7AI score0.00992EPSS
Exploits0
Rows per page
Query Builder